We’re happy to announce the launch of Raspberry Pi Pico 2, our second-generation microcontroller board, built on RP2350: a new high-performance, secure microcontroller designed here at Raspberry Pi.

With a higher core clock speed, twice the memory, more powerful Arm cores, new security features, and upgraded interfacing capabilities, Pico 2 delivers a significant performance and feature uplift, while retaining hardware and software compatibility with earlier members of the Pico series.

Pico 2 is on sale now, priced at $5.

  • baduhai@sopuli.xyz
    link
    fedilink
    arrow-up
    4
    ·
    4 months ago

    That’s usually not how secure boot is configured on microcontrollers. They usually come with no code installed and an unsigned bootloader, and therefore no barrier for you to flash what you want on it.

    In fact, the STM32 has secure boot, and it’s still one of the most popular microcontrollers for makers and hackers. That’s because the secure boot feature is there for developers, hackers and makers to use if they want to.

    • CalcProgrammer1
      link
      fedilink
      arrow-up
      1
      ·
      4 months ago

      True, but if you buy a finished product that uses the new chip that has secure boot enabled, you can’t flash your own firmware. From what I gather, the boot keys are burned into OTP memory so they can’t be erased or changed. The chip is permanently locked to that firmware.

      • baduhai@sopuli.xyz
        link
        fedilink
        arrow-up
        4
        arrow-down
        1
        ·
        4 months ago

        That’s correct.

        the boot keys are burned into OTP memory so they can’t be erased or changed

        Which is good, as otherwise it would defeat the purpose of secure boot.

        • CalcProgrammer1
          link
          fedilink
          arrow-up
          5
          ·
          edit-2
          4 months ago

          I wish these implementations of secure boot were designed more to protect the SOFTWARE against “theft” than the HARDWARE against “tampering”. Let us wipe the secure boot keys, but in the process erase the firmware (or have the firmware encrypted so that erasing the keys renders it unbootable) and then allow new code to run. Blocking third party firmware on consumer devices is a shit move. It just creates more e-waste when the OEM stops updating it and the community can’t make their own replacement firmware.